$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: sP4qslTHHE4uYI8MMCUL8Wf8poJWX2ZkINMRptNuoRs= Subject key identifier: 94:53:A8:29:B0:DC:10:D2:5F:68:37:83:25:B4:E6:A7:4D:03:15:0D Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 6C Signing time: Fri 25 Apr 2025 05:53:11 +0000 Manifest this update: Fri 25 Apr 2025 05:53:10 +0000 Manifest next update: Fri 02 May 2025 05:53:10 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: fJ7Op/44Y1k5UnLr/UygYtMOSFkGQdKEc0PeOwgkQa0=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:53:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Apr 25 05:53:10 2025 GMT Not After : May 2 05:53:10 2025 GMT Subject: CN=680b2346-74f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e1:81:2e:81:d2:2c:f1:01:86:71:70:4e:c3: 36:14:35:ae:6c:88:95:6e:f2:d2:9b:96:d7:ff:b0: 48:cf:f3:80:6b:0b:d8:a7:b0:8a:60:eb:92:47:ba: 81:1d:7f:21:01:b4:08:e4:d8:0d:2b:90:a4:fe:a6: e9:d1:3b:d3:fb:95:f6:78:99:c7:90:65:aa:12:31: 61:9f:82:f1:c3:5e:e0:81:cb:85:2e:94:34:54:e9: d3:ed:0b:3a:e6:62:07:2f:10:2c:b1:a8:cb:37:7d: bd:6d:d6:4e:d1:22:ff:39:1b:11:09:67:67:78:be: f8:1b:86:a4:82:bd:fe:22:6c:7e:1b:79:6b:1b:34: 42:e2:ff:3c:6d:58:81:a5:b9:2c:4d:15:4a:fe:8b: 65:82:93:bb:92:6b:71:b0:0a:97:d1:5d:92:74:65: 06:95:cd:19:64:0f:4e:58:88:3c:9c:79:c8:e4:2b: 76:b1:92:f1:07:7a:03:1d:07:b5:07:ef:80:24:ea: 6f:fd:dc:cc:fb:a4:5b:c7:57:7e:c3:99:4d:f9:2f: bd:63:01:30:95:a7:8d:87:93:fc:f0:19:6b:2d:48: e2:e2:0e:82:4b:b3:18:c5:93:50:b5:fc:1c:39:2a: bf:57:a8:43:2b:e2:ee:51:5c:9e:8f:9d:8e:4c:3c: b1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:53:A8:29:B0:DC:10:D2:5F:68:37:83:25:B4:E6:A7:4D:03:15:0D X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:57:ce:c4:d7:62:d4:68:82:30:f2:5e:7c:d0:b5:6d:bb:75: 38:0e:54:4a:bd:e5:ff:a5:cf:fb:55:48:44:67:99:05:ff:0f: 16:00:4a:36:51:ff:41:02:7a:4d:dd:94:3c:37:8d:a1:6e:a3: 8e:45:28:08:8b:98:f7:d8:b0:19:c8:62:dc:24:2c:ce:28:95: c8:f7:52:f5:07:48:d0:f7:c6:c9:89:2f:5a:e3:f8:65:30:de: 38:61:a3:be:78:1d:e1:d2:da:29:95:5a:ad:3a:33:cf:ce:bb: 0a:8a:c6:1d:4c:95:3e:ae:31:5d:8e:d1:e7:ec:9f:fa:e8:25: 9a:cf:86:77:18:d7:f6:d2:e0:b6:cf:9e:3a:14:98:22:2c:fc: e1:3d:91:2b:75:41:e2:6a:6c:0a:59:5a:5b:75:e0:e3:78:4d: a4:a0:c4:c9:f4:06:7b:59:ff:54:e5:b9:93:4b:28:0c:ec:88: 57:72:b4:81:4b:e6:73:29:50:7e:9e:7e:80:3f:96:c0:34:ed: 6b:ab:a8:68:43:0d:d2:e5:56:e3:60:23:4a:79:06:01:d8:f5: ca:9f:88:66:f4:16:e9:9c:88:0c:a6:b6:9f:8d:6f:d6:b4:6b: 2c:f7:c0:df:a0:e3:5b:3f:20:88:84:b5:9c:e0:ee:05:20:3b: 03:3a:52:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoOTU3RTUwQTc1RkJFNTAyRjM4RTNFREJGM0Y0QUFBRTY2 NUFFMTQ4QjAeFw0yNTA0MjUwNTUzMTBaFw0yNTA1MDIwNTUzMTBaMBgxFjAUBgNV BAMTDTY4MGIyMzQ2LTc0ZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC4YEugdIs8QGGcXBOwzYUNa5siJVu8tKbltf/sEjP84BrC9insIpg65JHuoEd fyEBtAjk2A0rkKT+punRO9P7lfZ4mceQZaoSMWGfgvHDXuCBy4UulDRU6dPtCzrm YgcvECyxqMs3fb1t1k7RIv85GxEJZ2d4vvgbhqSCvf4ibH4beWsbNELi/zxtWIGl uSxNFUr+i2WCk7uSa3GwCpfRXZJ0ZQaVzRlkD05YiDycecjkK3axkvEHegMdB7UH 74Ak6m/93Mz7pFvHV37DmU35L71jATCVp42Hk/zwGWstSOLiDoJLsxjFk1C1/Bw5 Kr9XqEMr4u5RXJ6PnY5MPLGnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlFOoKbDc ENJfaDeDJbTmp00DFQ0wHwYDVR0jBBgwFoAUlX5Qp1++UC844+2/P0qq5mWuFIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzRFNkNCNEY2ODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFg1UXAxLS1VQzg0NC0yX1AwcXE1bVd1RklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzRFNkNCNEY2ODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4 NDQtMl9QMHFxNW1XdUZJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGRXzsTXYtRogjDyXnzQtW27dTgOVEq95f+lz/tVSERnmQX/DxYASjZR /0ECek3dlDw3jaFuo45FKAiLmPfYsBnIYtwkLM4olcj3UvUHSND3xsmJL1rj+GUw 3jhho754HeHS2imVWq06M8/OuwqKxh1MlT6uMV2O0efsn/roJZrPhncY1/bS4LbP njoUmCIs/OE9kSt1QeJqbApZWlt14ON4TaSgxMn0BntZ/1TluZNLKAzsiFdytIFL 5nMpUH6efoA/lsA07WurqGhDDdLlVuNgI0p5BgHY9cqfiGb0FumciAymtp+Nb9a0 ayz3wN+g41s/IIiEtZzg7gUgOwM6Uj8= -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:12 2025 by rpki-client